A list of default backdoor passwords for network gear vendor Allied Telesis leaked and was available for download on Friday.
Some gear sold by Allied Telesis uses static default passwords for system recovery. Other equipment uses passwords derived from the MAC address. An application to calculate these MAC address specific passwords was leaked as well.
Johannes B. Ullrich, Ph.D.
SANS Technology Institute
(c) SANS Internet Storm Center. http://isc.sans.org Creative Commons Attribution-Noncommercial 3.0 United States License.